Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE754BD804C411F0B0EBE764762E951A.roa
File: CE754BD804C411F0B0EBE764762E951A.roa (raw, json)
Hash identifier: gVi6ZVGL00Xgkd5A04JgOBGV39i7hssHiykH1/hA0LM=
Subject key identifier: C8:E4:A0:1B:50:88:CF:8F:00:B6:E9:E3:60:A6:9A:F2:E3:E5:CA:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01751A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE754BD804C411F0B0EBE764762E951A.roa
Signing time: Wed 19 Mar 2025 13:19:37 +0000
ROA not before: Wed 19 Mar 2025 13:19:33 +0000
ROA not after: Wed 30 Apr 2025 13:19:33 +0000
asID: 62240
IP address blocks: 154.194.82.0/24 maxlen: 24
154.195.152.0/24 maxlen: 24
154.195.153.0/24 maxlen: 24
154.195.154.0/24 maxlen: 24
154.195.155.0/24 maxlen: 24
154.195.156.0/24 maxlen: 24
154.195.157.0/24 maxlen: 24
154.195.158.0/24 maxlen: 24
154.195.159.0/24 maxlen: 24
154.195.160.0/24 maxlen: 24
154.195.161.0/24 maxlen: 24
154.195.162.0/24 maxlen: 24
154.195.163.0/24 maxlen: 24
154.195.164.0/24 maxlen: 24
154.195.165.0/24 maxlen: 24
154.195.166.0/24 maxlen: 24
154.195.167.0/24 maxlen: 24
154.195.168.0/24 maxlen: 24
154.195.169.0/24 maxlen: 24
154.195.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 00:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95514 (0x1751a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 19 13:19:33 2025 GMT
Not After : Apr 30 13:19:33 2025 GMT
Subject: CN=67dac469-9924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9a:80:93:ef:9a:82:ea:94:46:0f:0e:be:9b:
ce:c6:ec:f9:1e:ff:44:25:2d:d2:8f:14:5b:a7:7c:
6f:ed:56:85:58:94:0a:f0:8a:38:24:1a:10:17:4f:
2c:dc:9e:55:0d:fe:6b:f9:ea:5e:1b:81:22:c5:f0:
84:36:bf:f0:5c:0a:72:01:b2:f5:51:6b:27:48:e0:
91:94:7b:e6:df:a2:03:7e:29:32:8d:46:2a:f0:8b:
13:4c:30:f8:18:e6:3d:01:8e:67:17:dc:18:6a:67:
cd:fb:77:51:d6:f0:04:ec:47:35:74:48:e0:a2:72:
59:28:54:90:00:cf:26:e8:fb:61:4e:7c:b6:a3:2f:
93:02:d6:68:43:31:aa:b2:6c:d6:e3:bf:b1:1b:99:
d2:7a:80:d0:b6:f7:53:a5:2f:e6:86:77:d8:b1:9b:
22:82:b9:c2:1a:bd:7a:63:01:d4:9a:fa:9c:0f:2e:
80:98:c3:21:05:a3:7c:14:c3:ad:98:2a:31:cb:60:
6f:68:46:5c:4d:ff:20:23:2e:22:d3:c1:d9:ff:0c:
cd:66:ef:83:ad:74:da:68:f4:9a:4f:bf:75:31:f3:
b0:17:06:4c:64:e4:83:76:3b:51:41:48:23:27:9c:
02:ec:0e:1c:67:47:77:96:91:78:69:f0:25:6f:5e:
d4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E4:A0:1B:50:88:CF:8F:00:B6:E9:E3:60:A6:9A:F2:E3:E5:CA:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE754BD804C411F0B0EBE764762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.82.0/24
154.195.152.0-154.195.170.255
Signature Algorithm: sha256WithRSAEncryption
28:51:7c:5f:b4:22:9b:fb:6b:a3:7d:28:65:d0:d9:20:2f:16:
05:ad:10:98:6f:6a:7c:c3:3e:8e:30:3e:1f:37:89:bb:5d:15:
73:61:e1:cf:c6:12:da:ca:b9:e2:a4:b0:32:2c:7c:ad:22:4b:
52:75:4a:91:e0:28:f8:70:ab:69:b9:f0:11:99:58:cd:42:20:
90:ee:38:25:7b:6b:41:46:2b:fb:ce:74:53:aa:d5:45:3d:f0:
a2:4e:ad:02:68:45:e0:d1:8d:ba:1f:4e:ae:d7:97:e7:6e:6c:
8f:55:37:bf:9e:43:64:60:e3:da:d5:d0:4e:28:6e:0c:f7:1f:
4c:e4:25:13:22:2f:65:0d:8f:49:0e:41:0a:6b:75:9e:fe:cf:
81:84:f3:33:6f:18:fc:bc:55:15:d3:54:fb:4b:d2:07:61:ac:
2e:10:f2:53:5d:cd:87:89:f0:69:65:1e:84:00:ef:b6:35:06:
8c:f2:ed:df:81:fd:2c:90:c3:2d:0f:8b:22:c4:ee:25:5c:08:
46:ca:a4:64:44:05:01:ae:13:82:59:c3:fe:44:d7:18:f7:31:
81:9b:15:6c:49:09:ac:4f:36:58:06:75:2d:6c:76:89:89:04:
3e:71:ef:e3:d3:9b:b7:aa:ac:48:e6:01:33:03:35:7e:a2:30:
f8:9b:75:96
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAXUaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzE5MTMxOTMzWhcNMjUwNDMwMTMxOTMzWjAYMRYw
FAYDVQQDEw02N2RhYzQ2OS05OTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA15qAk++aguqURg8OvpvOxuz5Hv9EJS3SjxRbp3xv7VaFWJQK8Io4JBoQ
F08s3J5VDf5r+epeG4EixfCENr/wXApyAbL1UWsnSOCRlHvm36IDfikyjUYq8IsT
TDD4GOY9AY5nF9wYamfN+3dR1vAE7Ec1dEjgonJZKFSQAM8m6PthTny2oy+TAtZo
QzGqsmzW47+xG5nSeoDQtvdTpS/mhnfYsZsigrnCGr16YwHUmvqcDy6AmMMhBaN8
FMOtmCoxy2BvaEZcTf8gIy4i08HZ/wzNZu+DrXTaaPSaT791MfOwFwZMZOSDdjtR
QUgjJ5wC7A4cZ0d3lpF4afAlb17U0QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFMjk
oBtQiM+PALbp42CmmvLj5coOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DRTc1NEJEODA0QzQxMUYwQjBFQkU3NjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAmsJSMAwDBAOaw5gDBACa
w6owDQYJKoZIhvcNAQELBQADggEBAChRfF+0Ipv7a6N9KGXQ2SAvFgWtEJhvanzD
Po4wPh83ibtdFXNh4c/GEtrKueKksDIsfK0iS1J1SpHgKPhwq2m58BGZWM1CIJDu
OCV7a0FGK/vOdFOq1UU98KJOrQJoReDRjbofTq7Xl+dubI9VN7+eQ2Rg49rV0E4o
bgz3H0zkJRMiL2UNj0kOQQprdZ7+z4GE8zNvGPy8VRXTVPtL0gdhrC4Q8lNdzYeJ
8GllHoQA77Y1Bozy7d+B/SyQwy0PiyLE7iVcCEbKpGREBQGuE4JZw/5E1xj3MYGb
FWxJCaxPNlgGdS1sdomJBD5x7+PTm7eqrEjmATMDNX6iMPibdZY=
-----END CERTIFICATE-----
Generated at Thu Apr 3 22:32:27 2025 by rpki-client